Managing Cloud Security
Cloud Security is a broad set of security practices and technologies designed to protect information stored in the cloud. It includes data encryption, access control, monitoring and alerting, response capabilities, and more. Managing Cloud Security requires a unified platform that supports continuous monitoring and compliance for hosts, containers, applications, and infrastructure regardless of the deployment model or cloud service provider.
With multiple clouds, new assets, and new threats, protecting your environment is more challenging than ever. A unified cloud security solution that integrates with DevOps tools and delivers a single view of your environment and risks can help to streamline audits, identify vulnerabilities more quickly, and prevent non-compliance from escalating into threats and breaches.
Defending the cloud requires a shift in focus from defensive to offensive strategies. Effective cloud security controls protect against unauthorized activity but also ensure that the integrity of data is maintained, even if it is outsourced to the cloud. This is achieved by effective security controls that can detect if data has been corrupted or deleted, and also ensure that the original can be restored when needed.
The shared responsibility model establishes who is responsible for securing the cloud environment. Typically, the cloud service provider (CSP) secures compute, physical network, virtual network controls, operating system, and databases while the organization is responsible for its data, application layer, and user access. This makes it vital that you have the right tools to identify and enforce policies in flexible environments where workloads can change, scale up or down dynamically, and be started or stopped within seconds.